How To Protect a WordPress Site Using Basic Auth in Apache 2.4

Author: erics, August 25th, 2016

Apache 2.4 changed the security configuration directives a bit. Here is an example using basic auth:

What tripped me up for a while was that I still had the Require all granted directive inside the container, and that needed to be removed for the auth to work.

Categories: How-To's, Technology Tags: 2.4, apache, Apache 2.4, Auth, Authentication, Basic, howto, htpasswd, mod_auth, Protect, require, security, tips | No comments

How To Protect a Single File in Apache

Author: erics, June 30th, 2013

In order to protect a file, just replace the Directory directive with Files:

Categories: How-To's, Technology Tags: apache, Auth, Authentication, AuthType, Basic, File, Files, howto, htpasswd, Protect, tips | No comments

How to Block wp-login.php Attacks on WordPress Sites

Author: erics, May 17th, 2013

Introduction WordPress installs globally have been taking quite a hit recently, as nefarious persons continue to attempt brute-force attacks against the WordPress login page. Based on research and experimentation, I have chosen the following approach to provide security with the lowest performance hit: require a web-server-level password for all requests to the wp-login.php file. This […]

Categories: How-To's, Technology Tags: .htaccess, admin, Amazon, Attack, AWS, Brute-force, CentOS, htpasswd, Linux, WordPress | No comments